browser and Office exploits are usually just wrappers for Flash exploit (see vector-exploit repo for builders and source)

Recording ambient audio with infected Android device

Flash exploits injected using a MITM device (think connected at the target's ISP, evil WIFI AP etc.). This works for flash on both Win, OSX and Linux.

Computer tracking based on sorrounding SSID

Infecting Windows PC by Evil Maid attack

Czech police had license for Windows version of the spyware and was evaluating Linux and iOS version. The evaluation license was issued 26 Jun 2015, so they presumably did not have too much time to enjoy it.

General spyware info

It looks like the Hackingteam spyware won't install inside virtual machine or when one of the following processes is running: